84% of large companies express concerns about the potential for cybersecurity incidents to occur within their own organizations. That figure is 70% for SMEs. Companies who have reported a cybersecurity incident in the past year express greater concern (about repeat attacks) than their counterparts who have not. Consequently, concerns here also rose in the past year.

Of the respondents who were aware of a cyberattack, 68% recorded one to five incidents. Nearly one out of ten companies had experienced over ten attacks.

Remarkably, in 22% of cases, those who have not detected incidents also have no insight into whether attacks have been neutralized or not.

The number of big businesses (+250 employees) subject to cybersecurity incidents is significantly higher than the share experienced by small and medium-sized companies (10 to 249 employees). 60% of respondents at the big players (e.g. over 2,000 employees) reported an incident within the past 12 months. That trend could be attributable to better tracing at large companies or a higher frequency of incidents due to a larger attack surface.

32% of respondents knew a cybersecurity incident* had occurred within their organization in 2022. This figure is nearly as high as last year’s. Of those who said that the company had remained incident-free, 15% were not entirely convinced or were not sure at all whether their response was correct.

Of accidental incidents, the most frequent to occur (38%) were unauthorized activities, e.g. app downloads or sharing company data without permission. Data breaches also made up a significant share of accidental incidents (34%).

Respondents also reported incidents due to software bugs and misconfigurations in addition to regulatory infractions, including GDPR violations.

The biggest victims were laptops and desktops (33%). However, servers (20%) and cloud applications (12%) were also major targets.

1.    Social engineering (22%)
2.    Ransomware (15%)
3.    Malware (13%)

Companies recorded both intentional and accidental incidents. 29% of cases involved a combination of the two. Zooming in on incident** attribution, we see that social engineering, e.g. spear phishing, makes up the lion’s share of intentional attacks. Ransomware and malware, such as viruses, worms, and Trojan horses, complete the triumvirate.

Half of incidents surface due to internal tracing. In 36% of cases, a combination of internal mechanisms, third-party notifications, and service provider notifications make the discovery.

Almost three out of four respondents subject to a cybersecurity incident think they noticed it within a week of the breach. A span of three to six months was only the case for 1%. That is quite a feat, given that cybersecurity experts say that rogue hacker groups actually stick around in their target’s infrastructure for longer.

It is worth noting that there is a sharp increase in inactivity among respondents who were victims of one or more cyber incidents. In 2020, 9% of companies and organizations had employees unable to work for some period of time. This happened to 30% of victims last year.

Thirty percent of incidents result in downtime. When that happens, an average of 28% of workers cannot get their jobs done. That downtime lasts over a week in 19% of cases.

84% van de grote bedrijven uit zijn bezorgdheid over cybersecurityincidenten die zich binnen hun organisatie kunnen manifesteren. Bij de kmo’s (in Nederland: mkb) gaat het om 70%. Wie het voorbije jaar een cybersecurityincident heeft gesignaleerd, toont zich in grotere mate bezorgd dan organisaties waar dat niet het geval was. De bekommernis is in dat geval het voorbije jaar ook toegenomen.

Van de respondenten die zich bewust zijn van een cyberincident, registeert 68% één tot vijf incidenten. Bij bijna één op tien bedrijven gaat het om meer dan tien feiten. Opmerkelijk: wie geen incidenten detecteert, heeft in 22% van de gevallen geen zicht op de al dan niet geneutraliseerde aanvallen.

In most cases, the effects did not last longer than a day (60%). For 9% of incidents, the impact trailed on for more than a month.

Nearly half of cybersecurity incidents have a financial impact. Those costs are primarily linked to incident reporting, reduced productivity, and reputational damage (12%).

Of incident victims, nearly half knew the financial impact. 37% paid over EUR 10,000, with 11% exceeding the EUR 100,000 mark.

Companies that experienced an incident in the past year experience a greater sense of urgency and need. For this segment, 63% already have a strategy, and almost one in three businesses have one in the works. Consequently, a total of 92% of previously affected respondents have a cyber strategy in development.

More and more companies organize awareness training for their employees several times a year. And we see this in our respondents' results as well. In 2020, 30% of companies organized multiple awareness trainings for employees. In 2022, that percentage increased by 7%.

A cybersecurity response procedure details the steps an organization should take when an incident occurs. A similar mechanism is already in place or in the works at 70% of all organizations. Once again, that percentage is highest for enterprises that experienced an incident last year.

The foundation of an advanced risk policy is a good cybersecurity incident management strategy. Such a strategy is in place in 53% of companies. A strategy is in the works among nearly a quarter of those surveyed. In contrast, 14% report that they have not tackled the issue yet.

Employee awareness raising is a critical first line of defense against the rising tide of cybercrime and Internet fraud, like social engineering. And yet, almost four out of ten companies do not conduct any cybersecurity awareness training. For SMEs, the figure is even as high as 46.5%. Nearly half of large enterprises (48.1%) organize more than one workshop a year.

• Awareness raising (25.9%)
• Cybersecurity policy and strategy (18.6%)
• Mature IT security (17.9%), inter alia, by developing current security measures

Priorities for the next twelve months include:

22% of respondents had boosted their cybersecurity budget by over 20% in the past year. Big companies demonstrated the most substantial increase, with one in three respondents reporting a significant budget increase.